On Tuesday, Russian media outlet Interfax said in a statement their servers were offline due to a virus attack. The news agency shifted their reporting efforts to Facebook while they work to recover.
A short time later, Russian security firm Group-IB posted a screenshot of the ransomware in action, calling it BadRabbit. Group-IB said at least three Russian media outlets were attacked, but only Interfax has been confirmed. Group-IB would not name any of the other victims.